RE: NetFlow Technology [7:70725]
Do you want it for your wan/accounting or lan/security? Try fprobe, a free ntop clone. http://fprobe.sourceforge.net/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=70859&t=70725 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Multicast + MLS question [7:22050]
On a switch with MLS enabled does the switch interrupt the flow of packets from a multicast source when there is a subscribed receiver on it? For example: A router with PIM enabled is connected to two switches running MLS, each with a subscibing host. One switch (switch1) has the multicast source attached. When the multicast begins the source sends a packet with the multicast address which is added to the MLS table. The packet then is processed by the router which forwards it to each switch because both have subscribing hosts. When switch1 receives this packet it completes the MLS entry and forwards the packet to the host. Now all further packets from the source are matched in the table and switched directly to the host without being forwarded to the router. Does this actually happen or are multicast packets excluded from MLS? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=22050&t=22050 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Connect 6509 with CONSOLE [7:17983]
I carry a 2" rollover cable and a coupler as well as the std 3' rollover. This way if you can always create the cable that works. PS I hate that little button. I love what it does but I never have anything to poke it with. Need to tape a paper clip to each switch. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18076&t=17983 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: An Interesting routing+Sw Question:LAB Q [7:18026]
This is actually very easy to do in the server OS (I admit, I'm an NT guy). Simply put both IP's in the gateway list with the priority opposite on 14. I guess you could also create 2 HSRP routers and split the assignment on the servers. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18073&t=18026 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
You'd be better off with a PRI and a channalized T1 card & digital modem card. You could then use a 3600. If you go with the async ports and modems you won't be able to get the 56K(53K) compression. The PRI should be cheaper than all those analog lines anyhow. Hunt around on ebay. There are lots of companies dumping this sort of stuff - going to VPNs. Look for a Lucent Max, Cisco Universal Gateway or something similar. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17941&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE One-Day Lab layout (hardware) [7:17813]
I'm assuming the 6509 will have the MSFC and blades w/ PFC's. Maybe an ATM interface or two. What about ISDN? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17914&t=17813 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: when do i have to choose a 2500w power ,not 1300 [7:17820]
Depends on what you are powering. Different blades draw different aperage. Especially with the inline power 4 phones. Look at the first 20 pages of the operating manual to find the specs. (2) 1300 power supplies may handle it but if they are being used in parallel but then there is no failure redundancy. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17913&t=17820 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP Network Statement [7:17885]
Yea, that's it. Or briefly Rip, OSPF, EIGRP and most other routing protocols use the network command to specify which interfaces should participate in route exchange. BGP uses it to specify which routes the router can originate. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17899&t=17885 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 3524s and Spanning tree [7:17725]
Spanning Tree has a suggested maximum diamater of 7. It's not the number of devices that is important, it's how many hops the outermost switches are from the root bridge. This is one reason it's best to designate which switch will be root. Use the spantree diamater command to adjust the timers (hello, max age, fwd delay) to appropriate settings for your network for optimal convergence. My $.02 Jeff Gercken CCNP, MCSE, CE Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17745&t=17725 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ebgp multihop values [7:17650]
Remember, if you use the Loopback address, that counts as another hop. You use the command in the syntax: neighbor [ip-address|peer group] ebgp-multihop [ttl] If you don't specify a ttl it assumes 255. If you don't enter the command is defaults to 1. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17710&t=17650 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VPN and Outlook [7:17692]
Are you using Outlook w/ Exchange or POP/IMAPing? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17708&t=17692 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Work-related ACL problem [7:17695]
It may not be the syntax of your ACL's at all. Are you using MLS to do L3 switching with the 6509? If you are then you need the Policy Feature Card (PFC) on your Sup blade. It works like this: A packet hits the switch which records the destination IP address in the CAM table and forwards it to the router.(it records more but not important here) The router applies any policy, strips the old destination MAC address (it's own) and replaces it with the next hop router's(or destination’s) and sends it back to the switch. If this packet was for one of the denied www servers it would be dropped. If it is forwarded, the switch compares the destination IP with those in its CAM table. If it finds the original listing (hasn't timed out) it will add the current destination MAC address of the packet. When the next packet to that destination IP hits the switch it will do a lookup, find an associated MAC address, and merrily rewrite the header and send the packet on it's way without consulting the router. Here's the problem: This works fine for L3 switching. To do L4 security, however, you need the PFC. With the "set mls flow full" command the switch will also record the protocol & port, but without the PFC its only good for accounting. Solution: Buy a PFC and use IP-flow mask or turn off multi-layer switching and route every packet. read more at: http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sw_5_3/msfc/acc_list.htm Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17707&t=17695 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
